Ivanti Connect Secure Zero Day is Leveraged to Install DslogdRAT and Web Shell
Pulse ID: 6814bc0378f2bcf443e8277c
Pulse Link: https://otx.alienvault.com/pulse/6814bc0378f2bcf443e8277c
Pulse Author: cryptocti
Created: 2025-05-02 12:35:15
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#ConnectSecure #CyberSecurity #DRat #InfoSec #Ivanti #OTX #OpenThreatExchange #RAT #bot #cryptocti
DslogdRAT Malware Installed in Ivanti Connect Secure
The article discusses a malware called DslogdRAT, which was installed on Ivanti Connect Secure systems by exploiting CVE-2025-0282. The malware communicates with a C2 server during business hours to avoid detection. It uses a web shell for initial access and supports various commands for file operations, shell execution, and proxy functionality. The article details the malware's execution flow, configuration data, and communication method. Additionally, SPAWNSNARE malware was found on the same compromised systems. The attacks are potentially linked to the UNC5221 threat group, and organizations are advised to monitor for ongoing threats targeting Ivanti Connect Secure vulnerabilities.
Pulse ID: 680fac65e0a2e6c1cce8b778
Pulse Link: https://otx.alienvault.com/pulse/680fac65e0a2e6c1cce8b778
Pulse Author: AlienVault
Created: 2025-04-28 16:27:17
Be advised, this data is unverified and should be considered preliminary. Always do further verification.
#ConnectSecure #CyberSecurity #DRat #InfoSec #Ivanti #Malware #OTX #OpenThreatExchange #Proxy #RAT #bot #AlienVault
Also, #survHEhmc (to run Bayesian modelling for survival analysis in HTA using HMC/pre-compiled @mcmc_stan models) and #survHMCinla (to run some Bayesian models for survival analysis in HTA using INLA) are now updated on GitHub and available via #drat repo)
Oh #drat, there's already such a thing as a "St. Clement's cake" – I thought I'd cleverly invented the name by noting the nursery rhyme reference… I suppose it was an obvious observation.
I just duck-searched it on a whim to find documented recipes all over the place. lol
Interestingly this example has almond involved too, so my addition of marzipan isn't even inventive.
Someone once said "there's nothing new in the kitchen," and I suspect that's probably right.
Hmm, two hour delay on receiving AT&T phone messages today. Missed the call from the plumber (didn't ring here, either). #drat
